/[adm]/puppet/modules/postfix/templates/main.cf
ViewVC logotype

Contents of /puppet/modules/postfix/templates/main.cf

Parent Directory Parent Directory | Revision Log Revision Log


Revision 1403 - (show annotations) (download)
Mon Mar 28 15:54:19 2011 UTC (8 years, 10 months ago) by misc
File size: 4001 byte(s)
add group subdomain on the secondary mx too
1 # Please be sure to read the /usr/share/doc/postfix/README.MDK file
2 # to learn about differences from stock postfix to Mandriva package.
3 # This file contains only the parameters changed from a default install
4 # see /etc/postfix/main.cf.dist for a commented, fuller version of this file.
5
6
7 # These are changed by postfix install script
8 readme_directory = /usr/share/doc/postfix/README_FILES
9 html_directory = /usr/share/doc/postfix/html
10 sendmail_path = /usr/sbin/sendmail.postfix
11 setgid_group = postdrop
12 command_directory = /usr/sbin
13 manpage_directory = /usr/share/man
14 daemon_directory = <%= lib_dir %>/postfix/
15 data_directory = /var/lib/postfix
16 newaliases_path = /usr/bin/newaliases
17 mailq_path = /usr/bin/mailq
18 queue_directory = /var/spool/postfix
19 mail_owner = postfix
20
21 # User configurable parameters
22
23 <% if all_tags.include?('postfix::simple_relay') %>
24 inet_interfaces = localhost
25 <% else %>
26 inet_interfaces = all
27 <% end %>
28
29 inet_protocols = all
30 mynetworks_style = host
31 myhostname = <%= fqdn %>
32 mydomain = <%= domain %>
33 mydestination = <%= fqdn %>
34 myorigin = $mydomain
35 <%- if all_tags.include?('postfix::secondary_smtp') -%>
36 relay_domains = <%= domain %>,
37 ml.<%= domain %>,
38 group.<%= domain %>
39 <%- end -%>
40
41 mydestination = <%= fqdn %>
42 <%- if classes.include?('sympa::server') -%>
43 ml.<%= domain %>
44 <%- end -%>
45
46 <%- if all_tags.include?('postfix::primary_smtp') -%>
47
48 virtual_mailbox_domains = <%= domain %>,
49 group.<%= domain %>
50
51 # postfix complain if not set
52 # Mar 22 23:51:20 alamut postfix/virtual[22952]: fatal: bad string length 0 < 1: virtual_mailbox_base =
53 virtual_mailbox_base = /var/lib/mail
54
55 # local_recipient_maps is disabled, as we need to route all
56 # non local email to ryu as long as mageia ml are hosted
57 # there. Hence the use of fallback_transport , but this is
58 # taken in account only of local_recipient_maps is empty
59 local_recipient_maps =
60 # route ml to ryu ( ml being mageia-*@mageia )
61 fallback_transport_maps = regexp:/etc/postfix/transport_regexp
62
63 # needed by sympa to handle bounce, according to the doc
64 recipient_delimiter = +
65
66
67 alias_maps = hash:/etc/postfix/aliases
68
69 virtual_alias_maps = ldap:/etc/postfix/ldap_aliases.conf
70 ldap:/etc/postfix/group_aliases.conf
71 hash:/etc/postfix/virtual_aliases
72 <%- if classes.include?('sympa::server') -%>
73 regexp:/etc/postfix/sympa_aliases
74 <%- end -%>
75 <%- end -%>
76
77
78 <%- if all_tags.include?('postfix::smtp_server') -%>
79 transport_maps = regexp:/etc/postfix/transport_regexp
80 content_filter = smtp-filter:[127.0.0.1]:10025
81 <%- end -%>
82
83 <%- if classes.include?('sympa::server') -%>
84 sympa_destination_recipient_limit = 1
85 sympabounce_destination_recipient_limit = 1
86 <%- end -%>
87
88 #delay_warning_time = 4h
89 smtpd_banner = $myhostname ESMTP $mail_name ($mail_version) (Mandriva Linux)
90 unknown_local_recipient_reject_code = 450
91 smtp-filter_destination_concurrency_limit = 2
92 lmtp-filter_destination_concurrency_limit = 2
93 # disabled for the time being, as the certificate do not exist
94 # FIXME create the cert in puppet
95 smtpd_use_tls = no
96 #smtpd_tls_cert_file = /etc/pki/tls/certs/postfix.pem
97 #smtpd_tls_key_file = /etc/pki/tls/private/postfix.pem
98 #smtpd_tls_CAfile = /etc/pki/tls/certs/ca-bundle.crt
99
100 <%- if all_tags.include?('postfix::smtp_server') -%>
101 smtpd_etrn_restrictions = reject
102
103 smtpd_helo_required = yes
104
105 smtpd_data_restrictions = permit_mynetworks
106 reject_unauth_pipelining
107 reject_multi_recipient_bounce
108
109 smtpd_recipient_restrictions = reject_non_fqdn_recipient
110 reject_non_fqdn_sender
111 # not done yet, not sure if we need to offer this kind of service
112 # permit_sasl_authenticated
113 permit_mynetworks
114 reject_unauth_destination
115 reject_non_fqdn_helo_hostname
116 reject_unknown_sender_domain
117 reject_unknown_client
118 <%- if classes.include?('postgrey') -%>
119 check_policy_service unix:extern/postgrey/socket
120 <%- end -%>
121 <%- end -%>
122

  ViewVC Help
Powered by ViewVC 1.1.26